Executes the lifecycle of security information and event management (SIEM) rules, reports, and dashboards to present actionable threats to Intrusion Analysts by refining existing rule logic; collaborating with Intrusion Analysts and Dynamic Defense Engineers under the direction of Senior SIEM Engineers; creating new rules and reports; and removing outdated rules and reports.
Maintains security information and even management (SIEM) infrastructure by monitoring metrics for efficiency and effectiveness; assisting with software and hardware upgrades; creating and managing documentation related to incident and change tracking; maintaining existing SIEM documentation; participating in pager rotation for on call support; opening trouble tickets with vendors; and following up to ensure resolution of open trouble tickets.
Supports senior engineers in architecture and engineering design by participating in strategy and design meetings.
Outlined below are the required minimum qualifications for this position. If none are listed, there are no minimum qualifications.Minimum Qualifications: Bachelor’s degree in Computer Science, Information Technology, Engineering, Computer Information Systems, or related field and 1 year's experience in information technology or related field within the last 5 years OR 3 years' experience in information technology or related field within the last 5 years.
Outlined below are the optional preferred qualifications for this position. If none are listed, there are no preferred qualifications.Customer Care, Information Security, Information Technology, SupportCCNA - Cisco Certified Network Administrator - Certification, CISA - Certified Information Systems Auditor - Certification, CISSP - Certified Information Systems Security Professional - Certification, GCIH - GIAC Certified Incident Handler - Certification